Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
489
Views
5
Helpful
2
Replies

change production IP range

wolfes
Level 1
Level 1

‎07-21-2003 09:32 AM - edited ‎03-02-2019 08:59 AM

Looking for 'best practices' regarding migration of network range in critical production environment.

Any advice is appreciated.

Labels:
0 Helpful
2 Replies 2

konigl
Level 7
Level 7

‎07-21-2003 05:23 PM

Put a secondary IP address and netmask on the interface; then change the desktops and servers one at a time (if manually assigned) or put a new DHCP server on the VLAN with addresses in the new range (after disabling the existing DHCP scope for the old IP subnet).

Depending on your situation, you can take your time (if you have Layer 3 switching) or you should hurry up (if routing between old and new subnet IPs goes through the same LAN interface on a router).

When "show ip arp" gives you no more IP addresses on the old subnet (other than the Cisco device's directly-connected LAN interface), copy and paste a sequence of commands from the console port to make the secondary IP address the primary IP address, and vice versa. After an appropriate amount of time, delete the secondary (old) IP address. Done.

There are tricks you can pull, for example shortening the lease period on DHCP addresses that are handed out, to get them checking for new IP addresses more frequently before you begin the address migration process. Whether you use them depends on how many stations you have to cut over, how many people you have helping, and how much time you have. But the above approach should be sufficient to get you where you want to be.

Oh yea, don't forget that most IP printing has the printers defined by their IP addresses. So if/when you change the IP address of a printer, you will have to also change the printer port definition on any and all machines that were printing directly to that printer's IP address. (If you're printing to print queues on a server, it's a little easier.)

And also, if you have HOSTS, LMHOSTS, DNS, or WINS/NBNS servers, you may have to update these name-to-IP-address resolution resources too.

Furthermore, if you have access control lists on routers, L3 switches, firewalls, or proxy servers, in order to restrict or allow specific traffic flows, you will need to update these as well to account for the new IP subnet(s).

Address changes are a PITA. No matter how well you plan to make it smooth, it always seems like something will bite you. Do your best to prepare for it in advance, though, and it won't hurt all that much. Make sure the most important things get cut over first and are working; sometimes people can wait to print, etc. And always have a retreat plan ready before you go charging in.

Maybe someone here can post the relevant RFC, I think there is one for going through the readdressing process.

Hope this helps.

UPDATE: Look for RFC's 1900, 1916, 2071, and 2072, plus search the Internet for "renumbering" or "PIER", the "Procedures for Internet/Enterprise Renumbering (PIER) working group in the IETF."

wolfes
Level 1
Level 1
In response to konigl

‎07-29-2003 11:23 AM

Thanks for the thorough response. I will look through the RFCs and additional searches.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents